-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2015:072
 http://www.mandriva.com/en/support/security/
 _______________________________________________________________________

 Package : gnutls
 Date    : March 27, 2015
 Affected: Business Server 2.0
 _______________________________________________________________________

 Problem Description:

 Updated gnutls packages fix security vulnerabilities:
 
 Suman Jana reported a vulnerability that affects the certificate
 verification functions of gnutls 3.1.x and gnutls 3.2.x. A version
 1 intermediate certificate will be considered as a CA certificate
 by default (something that deviates from the documented behavior)
 (CVE-2014-1959).
 
 It was discovered that GnuTLS did not correctly handle certain errors
 that could occur during the verification of an X.509 certificate,
 causing it to incorrectly report a successful verific